JEuropaisches Patentamt 
European Patent Office 
Office europeen des brevets 



(43) Date of publication: 

11.08.1999 Bulletin 1999/32 



(n) EP 0 935 221 A2 

EUROPEAN PATENT APPLICATION 

(51) Int. CI. 6 : G07C 9/00 



(21) Application number: 98123757.1 

(22) Date of filing: 14.12.1998 



(84) Designated Contracting States: 




(72) Inventors: 


AT BE CH CY DE DK ES Fl FR GB 


GR IE IT LI LU 


• Nakamura, Hiroshi 


MCNLPTSE 




Chiyoda-ku, Tokyo 100-8310 (JP) 


Designated Extension States: 




• Fujii, Teruko 


AL LT LV MK RO SI 




Chiyoda-ku, Tokyo 100-8310 (JP) 






• Sadakane, Tetsuo 


(30) Priority: 05.02.1998 JP 2422598 




Chiyoda-ku, Tokyo 100-8310 (JP) 


(71) Applicant: 




• Baba, Yoshimasa 
Chiyoda-ku, Tokyo 100-8310 (JP) 


MITSUBISHI DENKJ KABUSHIKI KAISHA 


Tokyo 100-8310 (JP) 




(74) Representative: 






Pfenning, Meinig & Partner 






Mozartstrasse17 






80336 Munchen (DE) 



(54) Remote authentication system 

(57) To a user terminal (5), one or plural kinds of 
biometric acquisition devices (6-10) are connected, and 
in an authentication server (3), one or plural authentica- 
tion information acquisition software are stored accord- 
ing to the user terminal (5) and/or a user. In accordance 
with the operation of a prescribed authentication acqui- 
sition software corresponding to the user terminal (5) 
and/or user, which is downloaded from the authentica- 
tion server (3) in authentication, biometric information 
acquired by one or plural kinds of biometric acquisition 
devices and/or keyed-in user discrimination information 
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Description 

BACKGROUND OF THE INVENTION 

1 . Field of the Invention 

[0001] The present invention relates to a remote 
authentication system in which identification of an indi- 
vidual by biometrics and decision of presence or 
absence of access right to the information of the individ- 
ual and application are made intensively by a single 
authentication terminal. 

2. Description of the Related Art 

[0002] Conventionally, in an information processing 
system connected to a network, for security, an opera- 
tion of identifying an individual to decide access permis- 
sion and inhibition of the individual, i.e., authentication 
is required. Further, an automatic teller machine of a 
bank or the like generally carries out authentication for 
identification of an individual and accessing to transac- 
tion information of the individual such as balance of the 
deposit. Authentication of an individual is also carried 
out for arrival or departure to a research place with high 
security and member's club. 
[0003] The authentication, i.e. identification of an indi- 
vidual and recognition of qualification, is carried out 
using a magnetic card or IC card which has the same 
function as an ID cared, individual's memory such as a 
password or a combination thereof. However, the pass- 
word may be forgotten. It may happen that the magnetic 
card or IC card cannot be authenticated because of 
loosing or breakage. The individual other than a person 
in question may be authenticated as the person in ques- 
tion because of steal of the card or leakage of the infor- 
mation of the password. In order to keep high security, 
the person in question must be surely authenticated as 
himself or herself. In this case, if the means of compli- 
cating the password or one-time password (OTP) is 
adopted, memorizing is difficult correspondingly, or the 
operation of authentication itself becomes complicate. 
Further, if authentication by memory is executed in a 
wide area (plural stores of the bank), authentication 
information must be managed intensively. 
[0004] On the other hand, authentication by biomet- 
rics information, which represents living-body charac- 
teristics of an individual such as information relative to a 
fingerprint, a handprint, handwriting, retina, etc. 
removes the complication and also makes "posing" diffi- 
cult. If the authentication by biometrics information is 
required in a wide region, intensive management and 
authentication are required for the same reason and 
protection of privacy. When the authentication by bio- 
metrics information is executed intensively, it is impor- 
tant to select a suitable method of authentication 
according to a security level such as a matter, place or 
system requiring authentication as well as each user, 
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thereby acquiring the authentication information. 
[0005] Now, the RAD IUS server, which is described by 
RFC 2138 (Remote Authentication Dial In User Service, 
hereinafter referred to as RADIUD, renewal of the previ- 

5 ous RFC 2058) which is registered in RFC (Request For 
Comment) of IETF (Internet Engineering Task Force), in 
response to a request from a RADIUS client, performs 
the authentication processing intensively to send back 
the result of authentication. In this case, the authentica- 

w tion means and authentication information are fixedly 
defined for each user. For this reason, if the biometrics 
information is to be acquired, according to its acquisition 
environment, the authentication means and authentica- 
tion information cannot be changed dynamically. 

w [0006] One example of such a prior art is an "authen- 
tication method on a network" disclosed in JP-A-9- 
81518. In this method, when a user host accesses to an 
application server, the application server requests an 
authentication server to make authentication of a user 

20 using fixed authentication means and authentication 
information and receives the result of authentication. 
[0007] The biometrics information is efficient to dis- 
criminate an individual from other persons. However, it 
gives rise to problems of privacy protection and sanitary 

25 acquisition when a biometrics acquisition device itself 
involves dirtiness and unpleasantness. 

SUMMARY OF THE INVENTION 

30 [0008] The present invention has been accomplished 
to solve the problem as described above, and intends to 
provide a remote authentication system and remote 
authentication method which can surely identify an indi- 
vidual and decide the presence or absence of an 

as access right thereof when the individual is authenti- 
cated using biometrics information and also can 
improve ease of usage. 

[0009] One of the present invention provides a remote 
authentication system having a network which is con- 
40 nected to an authentication server, an authentication cli- 
ent and a user terminal, in which authentication of the 
user accessing the authentication client is made 
through the user terminal, comprising one or plural 
kinds of biometrics acquisition devices connected to the 
45 user terminal, and one or plural authentication informa- 
tion acquisition softwares stored in said authentication 
server according to the user terminal and/or a user, 
wherein in accordance with the operation of a pre- 
scribed authentication acquisition software correspond- 
so ing to the user terminal and/or user, which is 
downloaded from the authentication server in authenti- 
cation, biometrics information acquired by one or plural 
kinds of biometrics acquisition devices and/or keyed-in 
user discrimination information are used. 
55 [0010] The present invention also a remote authenti- 
cation system having a network which is connected to 
an authentication server, and a user terminal are con- 
nected, in which authentication of the user accessing 
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said user terminal is made, comprising one or plural 
kinds of biometrics acquisition device connected to said 
user terminal, and one or plural authentication informa- 
tion acquisition softwares stored in said authentication 
server according to the user terminal and/or a user, 
wherein in accordance with the operation of a pre- 
scribed authentication acquisition software correspond- 
ing to the user terminal and/or user, which is 
downloaded from the authentication server in authenti- 
cation, biometrics information acquired by one or plural 
kinds of biometrics acquisition devices and/or keyed-in 
user discrimination information are used. 
[0011] Further, the present invention also provides a 
remote authentication system comprising an authenti- 
cation information acquisition software including a pro- 
cedure for the user selecting which of said plural 
biometrics acquisition devices connected to said user 
terminal should be used to input the biometrics informa- 
tion. 

BRIEF DESCRIPTION OF THE DRAWINGS 
[0012] 

Fig. 1 is a block diagram of the first embodiment of 
a Web system to which the remote authentication 
system according to the present invention is 
applied. 

Fig. 2 is a timing chart for explaining processing of 
authentication in the Web system in Fig. 2. 
Fig. 3 is a graph for explaining a first example of an 
authentication information database in the authenti- 
cation server terminal in Fig. 1. 
Fig. 4 is a graph for explaining a first example of an 
authentication information database in the authenti- 
cation server terminal in Fig. 1. 
Fig. 5 is a graph for explaining a second example of 
an authentication information database in the 
authentication server terminal in Fig. 1. 
Fig. 6 is a graph for explaining a third example of an 
authentication information database in the authenti- 
cation server terminal in Fig. 1. 
Fig. 7 is a graph for explaining a third example of an 
authentication information database in the authenti- 
cation server terminal in Fig. 1. 
Fig. 8 is a timing chart for explaining the authentica- 
tion processing of the third example in the Web sys- 
tem shown in Fig. 1. 

Fig. 9 is a block diagram of the second embodiment 
of the Web system to which a remote authentication 
system according to the present invention is 
applied. 

Fig. 10 is a timing chart for explaining the authenti- 
cation processing in the Web system shown in Fig. 
9. 

Fig. 1 1 is a timing chart for explaining the case 
where rejection occurs as the third embodiment of 
the Web system in Fig. 1. 



Fig. 12 is a schematic view of the fourth embodi- 
ment of the Web system in Fig. 1 . 

DETAILED DESCRIPTION OF THE PREFERRED 
5 EMBODIMENTS 

[0013] Now referring to the drawings, an explanation 
will be given of embodiments of the present invention. 

10 Embodiment 1 

[001 4] Fig. 1 shows a configuration of the first embod- 
iment when the present invention is applied to a Web 
system. A network 2 is connected to an authentication 

15 server terminal 3, an authentication client terminal 4 
(Web server terminal in this embodiment) and a user 
terminal 5, etc. In such a Web system 1 , the Web server 
4, when it is accessed through the user terminal 5 from 
a user, receives individual authentication of the user 

20 from the authentication server terminal 3, and on the 
basis of the result, provides service to the user. 
[001 5] The authentication server terminal 3 is a com- 
puter device such as a personal computer, workstation, 
etc. (which may include a CPU, memory, disk, commu- 

25 nication control unit, etc. as described hereinafter ) 
which stores an authentication control unit 3A, authenti- 
cation information data base 3B and authentication 
information acquisition software pool 3C (hereinafter, 
software will be referred to SAV), The Web server termi- 

30 nal 4 is a computer device such as a personal computer, 
workstation, etc. in which a Web server data base 4A, 
authentication request unit 4B and a Web server S/W 
4C requiring authentication of a user are operated. 
[0016] The user terminal device 5 is composed of a 

35 browser for displaying information of the Web server ter- 
minal 4 and a computer device such as a personal com- 
puter or workstation in which authentication information 
acquisition SAV 5B are operated. The user terminal 
device 5 is connected to a biometrics acquisition device 

40 6. The biometrics acquisition device 6 includes a finger- 
print acquisition device 7 and a handprint acquisition 
device 8 which acquire a fingerprint and handprint of a 
living body as biometrics information, respectively, 
through image processing, a letter recognition tablet 9 

45 for acquiring handwriting information written by a user 
as biometrics information, a retina information acquisi- 
tion device 10 for acquiring retina information of a living 
body as biometrics information by scanning of an eye- 
ground. 

so [0017] A processing flow of authentication in such a 
Web system is shown in Fig. 2. First, an explanation will 
be given of the case where a user accesses the infor- 
mation of the Web server data base 4A with a high 
secret degree in the Web server terminal 4 which is a 

55 client of authentication, using the browser 5A which is 
an application operating in the user terminal device 5 
(SP1). The Web server SAV 4C which is an application 
making access control of the information with a high 
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secret degree must make user authentication in order to 
decide whether the user has an access right (SP10). 
[0018] Namely, the Web server S/W 4C in the Web 
server terminal 4 informs the authentication request unit 
4B of necessity of the user authentication as well as a 
client ID (identifier of the authentication request unit), an 
application ID (identifier of the Web server S/W 4C 
which is an application requiring authentication) and an 
access data class (secret level of the data accessed by 
the user) (SP11). The authentication request unit 4B 
transmits the authentication request of the user inclu- 
sive of the above information to the authentication 
server terminal 3. 

[0019] The authentication control unit 3A in the 
authentication server terminal 3 which has received the 
authentication request from the user selects an authen- 
tication information acquisition S/W 1 1 from the authen- 
tication client ID, application ID and access data type 
(SP20). The authentication information acquisition S/W 
1 1 acquires a predetermined item of information. It may 
acquire a plurality of items of authentication information. 
The authentication control unit 3A transfers the selected 
authentication information acquisition S/W 11 to the 
Web server terminal 4 which is a client of authentication 
(SP21). 

[0020] The authentication request unit 4B in the Web 
server terminal 4 delivers the transferred authentication 
information acquisition S/W 1 1 to the Web server S/W 
4C, instructs it to acquire the authentication information 
from the user. On the basis of this instruction, the 
authentication information acquisition S/W 1 1 is trans- 
ferred from the Web server S/W 4C to the user terminal 
5(SP12), 

[0021 ] The browser 5A in the user terminal 5 receives 
the transferred authentication information acquisition 
S/W 1 1 and operates it as an authentication information 
S/W 5B (SP2). The authentication information S/W 
spontaneously acquires a user ID (name, firm, member 
number, address, belonging, telephone number, or ID 
allotted for an individual by the system), biometrics 
information such as information relative to a fingerprint, 
a handprint, handwriting, retina, and authentication 
information which is used normally in a conventional 
computer system, such as a password, one-time pass- 
word, etc. In this case, it may operate in cooperation 
with the other S/W such as a driver acquiring the 
authentication information. The authentication informa- 
tion acquisition S/W 5B transfers the acquired user ID 
and authentication information to the Web server termi- 
nal 4 through the browser 5A (SP3). 
[0022] The authentication request unit 4B in the Web 
server terminal 4 transfers the user ID and authentica- 
tion information acquired from the user to the authenti- 
cation server terminal 3 through the Web server S/W 4C 
(SP13). The authentication control unit 3A in the 
authentication server terminal 3 executes the user 
authentication using the transferred user ID and authen- 
tication information (SP22). The authentication informa- 



tion such as the transferred biometrics information is 
checked against the individual information initially 
stored in the authentication information database 3B in 
the authentication server terminal 3. If a decision of 

5 being a person in question is made as results of check- 
ing all items of transferred authentication information, 
the result is informed of the Web server terminal which 
is an client of identification. If at least one of the results 
of checking is not right, a decision of not being a person 

io in question is made. This is informed of the Web server 
terminal (SP23). 

[0023] The authentication request unit 4B in the Web 
server terminal 4 having received the result of authenti- 
cation, which is a client of authentication, informs the 

is Web server S/W 4C of the result of authentication. On 
the basis of the result of authentication, the Web server 
SAW 4C decides permission or inhibition of access to 
the information with a high secret degree in the Web 
server data base 4A for the user (SP14). For example, 

so the operation for user access such as displaying the 
secret information is done. 

[0024] Additionally, encryption between the user ter- 
minal 5 (authentication information acquisition SAV 5B) 
and Web server terminal 4 and between the Web server 

25 terminal 4 and authentication server terminal 3 (authen- 
tication control unit 3A) permits the authentication infor- 
mation to be concealed and a menace of posing to be 
reduced. Likewise, encryption between the user termi- 
nal 5 (authentication information acquisition S/W 5B) 

30 and authentication server terminal 3 (authentication 
control unit 3A), but not between the individual termi- 
nals, also permits a menace of posing to be reduced. 

Example 1 

[0025] Referring to Figs. 3 and 4, an explanation will 
be given of a simple example of the database structure 
and selection processing of the authentication informa- 
tion acquisition SAV 5B. The authentication information 
40 database 3B in Fig. 3 includes items of user ID, user 
level and authentication as information allotted to an 
individual user. The user ID includes a name, firm, 
member number, address, belonging, telephone 
number, or any matter allotted for an individual by the 
45 system. The user level represents an access level to 
secret information. The authentication information is 
biometrics information such as information relative to a 
fingerprint, a handprint, handwriting, retina, and authen- 
tication information such as a password, one-time pass- 
so word, etc. 

[0026] As seen from Fig. 4, the authentication infor- 
mation acquisition SAW pool stores authentication infor- 
mation acquisition SA/Vs 1 1 of acquiring information of 
both fingerprint and retina; acquiring fingerprint infor- 
65 mation of two fingers and acquiring information of both 
fingerprint and retina, etc. The authentication informa- 
tion acquisition S/W pool 3C describes the selectable 
authentication information acquisition S/W 11 corre- 
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sponding to secret levels and data class. 
[0027] Taking as an example the case where a user 
accesses the information of the Web server database 4 
of the data class of 17, an explanation will be given of a 
mechanism of selecting the authentication information 
acquisition S/W 1 1 in the authentication server terminal 
3. In this case, the authentication client ID correspond- 
ing to an identifier of the authentication request unit 4B 
is set at 15, and the application ID corresponding to the 
identifier of the Web server S/W 4C is set at 25. When 
access to the data class of 17 occurs, the Web server 
S/W 4C informs the authentication request unit 4B of 
necessity of user authentication. The user request unit 
4B transmits the authentication request of the user, 
inclusive of the above items of information of the data 
class of 17, authentication client ID of 15 and applica- 
tion ID of 25, to the authentication server terminal 3. In 
response to this, the authentication server terminal 3 
receives the authentication request inclusive of these 
items of information. 

[0028] The authentication control unit 3A in the 
authentication server terminal 3 notices a selectable 
candidate of the authentication information acquisition 
S/W 1 1 not lower than level 2 on the basis of the data- 
base in the authentication information acquisition S/W 
pool 3C in Fig. 4 and that the data class due to the 
authentication request is level 2. 

Example 2 

[0029] Referring to Figs. 5 and 6, an explanation will 
be given of another embodiment of a part of the authen- 
tication information database corresponding to that 
shown in Fig. 3. These figures describe the selectable 
authentication information acquisition S/Ws 11 for each 
authentication client ID and for each application ID, 
respectively. The authentication control unit 3A in the 
authentication server terminal 3 notices candidates of 
the authentication information acquisition S/Ws 11 
selectable from the authentication client ID and from the 
application ID. Therefore, on the basis of the data class, 
A, B, C, D, E, F are selected as candidates; on the 
authentication client ID, C, D, and E are selected as can- 
didates; and on the basis of the application ID, A, D, E, 
and E are selected as candidates. Finally, either D or E 
will be selected. 

[0030] The S/W selected at random or fixedly defined 
from candidates of the selectable authentication infor- 
mation acquisition S/Ws by the authentication server 
terminal 3 is selected by means of normal selection or 
sequential selection. In this embodiment, the authenti- 
cation means and authentication information can be 
flexibly selected according to the environment such as 
the data class which is access information, authentica- 
tion request unit 4B operating in a device which is a cli- 
ent of authentication and Web server S/W 4C which is 
an using application. Thus, identification of an individual 
and decision on presence or absence of the access 



right of the individual can be surely made according to 
the environment. 

Example 3 

5 

[0031 ] An explanation will be given of the case where 
an user ID is included in an authentication request and 
the authentication information data base shown in Fig. 3 
is set in detail as shown in Fig. 7. The flow of processing 
io in this embodiment is shown in Fig. 8 in which like refer- 
ence numerals refer to like parts in Fig. 2. First, the Web 
server terminal 4 acquires a user ID (name, firm, mem- 
ber number, address, belonging, telephone number, or 
ID allotted for an individual by the system), and requests 
w the authentication request unit 4B to make authentica- 
tion of the user with the acquired user ID, client ID (iden- 
tifier of the authentication request unit 4B), application 
ID (identifier of the We server S/W 4C which is an appli- 
cation requiring authentication) and access data class 
zo (secret level of the data accessed by the user). 

[0032] The authentication information database 
shown in Fig. 7, in addition to that shown in Fig. 3, 
includes information allotted for an individual such as a 
type of the user (data manager or general user), usable 
25 authentication client ID, usable application ID, applica- 
tion control information which is delivered to an applica- 
tion when authentication of being a person in question is 
made, and checking logs (past selection status of the 
authentication information acquisition S/W to the pre- 
ss scribed number of authentication and checking rate), 
total number of times of authentication, selection condi- 
tion, etc. 

[0033] Where the authentication request includes the 
user ID, the authentication information acquisition SA/V 

35 will be selected in accordance with the selection condi- 
tion for the user in question. For example, if the user ID 
is 1, and the other conditions are the same in the previ- 
ous example (i.e., data class = 17, authentication client 
ID = 15 and application ID = 25), the authentication 

40 request unit 4B transmits, to the authentication server 
terminal 3, the authentication request of user as the 
above information inclusive of the user ID =1, data class 
= 17, authentication client ID = 15 and application ID = 
25. 

45 [0034] The authentication server terminal 3 receives 
the request of authentication inclusive of the above 
information. Like the above embodiment, on the basis of 
the data class, A, B, C, D, E, F are selected as candi- 
dates; on the authentication client ID, C, D, and E are 

so sel ected as candidates; and on the basis of the applica- 
tion ID, A, D, E, and E are selected as candidates. 
Finally, either D or E will be selected. Further, the user 
ID = 1, the authentication control unit 3A executes the 
selection in the total number of times of authentication. 

65 Selection will be made in such a fashion that the first 

selection is D, second is E, third is E, forth is E Now, 

in the total number of times of authentication is 20 with 
the user ID = 1, this time is 21th. Therefore, D of the 
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authentication information acquisition S/W 11 will be 
selected. Other Examples 

[0035] Further, as shown in Fig. 7, in the authentica- 
tion information database 3B, if the authentication client 
ID and application ID which are usable for each user are 
designated, access control such as sending the authen- 
tication information acquisition S/W 1 1 to user 
only if the designated authentication client ID and appli- 
cation ID are designated can be realized. Now, since 
the usable client ID includes 15, and the usable applica- 
tion IS includes 25, sending of the authentication infor- 
mation acquisition S/W 1 1 is permitted. 
[0036] Permission or inhibition of the authentication 
information acquisition S/W 1 1 can be decided on the 
basis of the user type shown in Fig, 7. Like to the user, 
if a secret level is allotted for the authentication client 
and application, the authentication server terminal 3 
can select the authentication information acquisition 
S/W 1 1 on the basis of the levels of the authentication 
client, application and access data class. For example, 
control of selecting the authentication information S/W 
with the highest level in three levels or higher can be 
made. 

[0037] The processing after sending the authentica- 
tion information acquisition S/W 1 1 is different from the 
example described above in that only the authentication 
information is sent because the user ID has been 
acquired. Further, using Key = 1 which is control infor- 
mation which is delivered to the application when 
authentication of the person in question is Fig. 7 is 
made, the Web server terminal 4 can realize a variety of 
access controls. 

[0038] In the above example, the total number of times 
of authentication as an example of the checking rate in 
Fig. 7 was used as the selection condition. In place of it, 
if the checking evaluation is used as the selection con- 
dition, of the authentication information acquisition 
S/Ws 1 1 with the level of 2 or higher, the one with the 
highest checking evaluation in the past is looked for 
from the checking logs of the user and selected. Now, E 
which has the highest checking evaluation at the last 
time is selected. 

[0039] There is also an example of omitting the trans- 
fer of the authentication acquisition S/W from the 
authentication server 3 to the authentication client. 
Namely, where the authentication information acquisi- 
tion S/W is determined fixedly by the Web server termi- 
nal which is an authentication client in the case of the 
Web system 1 as described above, the authentication 
acquisition S/W 11 previously acquired by the Web 
server terminal 4 may be transferred from the authenti- 
cation server terminal 3 to the Web server terminal 4 
without transferring the authentication information 
acquisition S/W. 

[0040] As described above, where the authentication 
is executed using the biometrics information in the Web 
system 1, the authentication information acquisition 
S/W which dynamically acquires the information 
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required for authentication is selected in accordance 
with the environment (user having made access, data 
class which is access information, authentication 
request unit 4B operating in the Web server terminal 4 

5 which is a client of authentication, Web server S/W 4C 
which is an using application, etc.) and authentication 
history (i.e. status at the time of authentication). In this 
way, identification of an individual and decision of the 
presence or absence of the access right of the individ- 

w ual can be surely made according to the environment. 

Embodiment 2 

[0041 ] The second embodiment of the present inven- 

w tion is a simplification of the first embodiment. In Fig. 9 
in which like reference numerals refer to like parts in Fig. 
1 , the user terminal which acquires the biometrics infor- 
mation is the same as the terminal of the authentication 
client. An example of an application requiring authenti- 

20 cation is an database retrieval application 5E for execut- 
ing the database retrieval. The user terminal 5 includes 
a local database 5C which is used by the database 
retrieval application 5E, authentication request unit 5D, 
and a computer (personal computer or workstation) in 

25 which the database retrieval application 5E and authen- 
tication information acquisition S/W 11 are operated. 
The biometrics acquisition device 6 is connected to the 
user terminal 6, and has entirely the same configuration 
as that in the first embodiment. The authentication 

so server terminal 3 has entirely the same configuration as 
that in the first embodiment. 
[0042] An explanation will be given of the operation of 
the remote authentication system according to the sec- 
ond embodiment of the present invention. In Fig. 10 in 

35 which like reference numerals refer to like parts in Figs. 
2 and 8, the database application retrieval application 
5E, when it accesses the secret information in the local 
database 5C (SP5), first acquires a user ID (name, firm, 
member number, address, belonging, telephone 

40 number, or ID allotted for an individual by the system) 
(SP6), and requests the authentication request unit 5D 
to make authentication of the user with the acquired 
user ID, client ID (identifier of the authentication request 
unit 5D), application ID (identifier of the database 

45 retrieval application 5E which is an application requiring 
authentication) and access data class (secret level of 
the data accessed by the user (SP7). 
[0043] The authentication server terminal 3 executes 
the same operation of authentication as in the first 

so embodiment. The authentication request unit 5D of the 
user terminal 5, having received the result of authenti- 
cation informs the database retrieval application 5E of 
the result of authentication. The database retrieval 
application 5E, on the basis of the result of authentica- 

55 tion, decides permission or inhibition of access to the 
highly secret information in the local database 5C by the 
user (SP8). In this case, for example, the operation to 
user access such as displaying the secret information 
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will be made. In such a configuration in which the user 
terminal 5 issues a request of authentication, the same 
effect as in the first embodiment may be obtained. 

Embodiment 3 

[0044] In Fig. 1 1 in which like reference numeral refer 
to like parts in Figs. 2 and 8, a procedure (SP2B, 
SP12A) is proposed in which a user rejects the authen- 
tication information acquisition S/W when the individual 
authentication information specified by the authentica- 
tion information acquisition S/W 1 1 transferred from the 
authentication server 3 does not coincide with an user's 
intention (SP2B, SP12). The authentication server ter- 
minal 3 having suffered the rejection of acquisition 
selects another authentication information acquisition 
S/W again (SP20A). However, this is limited to the case 
where there is another authentication information acqui- 
sition S/W which can be selected again as described in 
connection to Fig. 4. 

[0045] Where the biometrics is used as authentication 
information of an individual, it is necessary for a user to 
reject a specified biometrics acquisition device 6 involv- 
ing dirtiness and unpleasantness. Specifically, although 
the biometrics is efficient to discriminate an individual 
from other persons, it gives rise to problems of privacy 
protection and sanitation as described above. For this 
reason, it is necessary for the user to reject or change 
the biometrics acquisition. 

[0046] Where the biometrics acquisition device 6 is 
not trusted in security, the user may have an intention of 
specifying the other information than the biometrics, i.e. 
alternative means such as one-time password (OTP) 
even if it is complicate. In such a case, in accordance 
with the user's intention of rejection or changing, the 
authentication information acquisition S/W which 
dynamically acquires the information for authentication 
can be selected to identify an individual and decide the 
presence or absence of the access right of the individ- 
ual according to the environment surely. 

Embodiment 4 

[0047] This embodiment, as means for obtaining the 
same effect as in the third embodiment, includes the 
mechanism of selecting the acquired authentication 
information in the authentication information acquisition 
S/W itself in the first and second embodiments. In the 
first embodiment, the authentication information S/W 
itself can select authentication D by both fingerprint and 
handwriting and that E by only the fingerprint. In this 
case, the authentication server transfers the authentica- 
tion information acquisition S/W capable of acquiring 
both D and E. 

[0048] The configuration and operation procedure in 
the Web system 1 itself are the same as in the first and 
second embodiments. The displayed image of the 
authentication information acquisition S/W on the side 
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of the user is shown in Fig. 12. The user selects either 
D or E to acquire authentication means and authentica- 
tion information for himself. When he pushes either 
select button 1 2A or 1 2B, the authentication information 

5 acquisition S/W is operated to acquire the authentica- 
tion information actually selected. The authentication 
server terminal 3 can decide the type of the received 
authentication information and if authentication can be 
made using a set of the received information. Thus, the 

10 same effect as in the third embodiment can be obtained. 
[0049] In the first to fourth embodiments, the authen- 
tication information to be acquired has been determined 
by the authentication S/W. However, instead of this, the 
authentication information to he acquired may be only 

is displayed on a screen. For example, at the number of 
times of authentication in the detailed database in the 
first embodiment, transfer of the fingerprint information 
and handwriting information is displayed on the screen. 
Thus, the user spontaneously operates the software for 

20 acquiring the authentication information in accordance 
with the displayed contents, and transfers the authenti- 
cation information thus acquired to the authentication 
server terminal 3. 

[0050] The transfer may not be concretely displayed, 

25 but previous transfer of the authentication information 
may be displayed. In this case, the user spontaneously 
operates the software for acquiring the authentication 
information to acquire all the items of information 
noticed previously from a manager in accordance with 

30 the user's memory and transfers the acquired authenti- 
cated information to the authentication server. In this 
way, the same effect as the first embodiment can be 
realized. In the above case of the previous transfer of 
the authentication information, which is not displayed 

35 concretely, the means for acquiring the authentication 
information is used in a fashion of a password. There- 
fore, security in acquisition of the authentication infor- 
mation can be improved remarkably. 
[0051 ] In the first to fourth embodiments, the authen- 

w tication of a user individual was made by the Web server 
terminal 4. The present invention, however, should not 
be limited to this, but may be widely applied to a general 
controller requires a user's individual such as an 
arrival/departure terminal device connected to a net- 

45 work. 

[0052] As described above, in accordance with the 
present invention, when authentication should be made 
using the biometrics information, the authentication 
server freely, selects and acquires the biometrics acqui- 

so sition device and authentication information in accord- 
ance with the acquisition environment of the biometrics 
information by the user. Thus, a remote authentication 
system capable of identification of a user and decision 
of the presence or absence of the access right of the 

55 user can be surely realized. 

[0053] If the authentication information designated is 
not satisfactory for the user, he can change the authen- 
tication information to be acquired and reject its acquisi- 
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tion. Even when the biometrics acquisition device itself 
involves dirtiness and unpleasantness, or device for 
acquiring the biometrics information is not reliable, the 
identification of the user and decision of the presence or 
absence of the access right of the user can be made by s 
an alternative means. 

Claims 

1. A remote authentication system having a network 10 
which is connected to an authentication server, an 
authentication client and a user terminal, in which 
authentication of the user accessing the authentica- 
tion client is made through the user terminal, said 
system comprising: 15 

one or plural kinds of biometrics acquisition 
devices connected to said user terminal; and 
one or plural authentication information acqui- 
sition softwares stored in said authentication so 
server according to the user terminal and/or a 
user; 

wherein in accordance with the operation of a 
prescribed authentication acquisition software 
corresponding to the user terminal and/or user, 2s 
which is downloaded from the authentication 
server in authentication, biometrics information 
acquired by one or plural kinds of biometrics 
acquisition devices and/or keyed-in user dis- 
crimination information are used. 30 

2. A remote authentication system having a network 
which is connected an authentication server and a 
user terminal, in which authentication of the user 
accessing said user terminal is made, said system 3s 
comprising: 

one or plural kinds of biometrics acquisition 
device connected to said user terminal; and 
one or plural authentication information acqui- 40 
sition softwares stored in said authentication 
server according to the user terminal and/or a 
user, wherein in accordance with the operation 
of a prescribed authentication acquisition soft- 
ware corresponding to the user terminal and/or 4s 
user, which is downloaded from the authentica- 
tion server in authentication, biometrics infor- 
mation acquired by one or plural kinds of 
biometrics acquisition devices and/or keyed-in 
user discrimination information are used. so 

3. A remote authentication system according to claim 
1 , further comprising an authentication information 
acquisition software including a procedure for the 
user selecting which of said plural biometrics acqui- 55 
sition devices connected to said user terminal 
should be used to input the biometrics information. 



4. A remote authentication system according to claim 
2, further comprising an authentication information 
acquisition software including a procedure for the 
user selecting which of said plural biometrics acqui- 
sition devices connected to said user terminal 
should be used to input the biometrics information. 
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